Security Architecture, Endpoint/Device Security, Network Security, Security Strategy, Plan, Budget, Vulnerability Management

Apple patches iOS jailbreak vulnerability


Apple this week issued a new security update that addresses a zero-day vulnerability enabling iOS users to jailbreak their devices.

The company has patched CVE-2020-9859, a memory consumption issue that can result in arbitrary code execution with kernel privileges.

The fix was made in iOS 13.5.1 and iPadOS 13.5.1 for iPhone 6s and later, iPad Air 2 and later, iPad mini 4 and later and iPod touch 7th generation. The same bug was also repaired in macOS Catalina 10.15.5 and macOS High Sierra 10.13.6; tvOS 13.4.6 for Apple TV 4K and Apple TV HD; and watchOS 6.2.6 for Apple Watch Series 1 and later.

The Apple jailbreak made available last month by the Unc0ver hacking group after the vulnerability was discovered by one of its members, @Pwn20wnd. Jailbreaks are hotly anticipated events for certain tech enthusiasts and security researchers because they allow them to circumvent protections in order to probe more deeply into their devices, and customize them or add programs. However, they can sometimes also expose security issues -- although on its official website, the Unc0ver group has said that its jailbreak does not introduce any new vulnerabilities.

Bradley Barth

As director of multimedia content strategy at CyberRisk Alliance, Bradley Barth develops content for online conferences, webcasts, podcasts video/multimedia projects — often serving as moderator or host. For nearly six years, he wrote and reported for SC Media as deputy editor and, before that, senior reporter. He was previously a program executive with the tech-focused PR firm Voxus. Past journalistic experience includes stints as business editor at Executive Technology, a staff writer at New York Sportscene and a freelance journalist covering travel and entertainment. In his spare time, Bradley also writes screenplays.

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.